View Single Post
  #15  
Old 7th August 2010, 20:34
kwickcut kwickcut is offline
Senior Member
 
Join Date: Nov 2005
Location: nj usa
Posts: 226
Thanks: 14
Thanked 11 Times in 10 Posts
Default

i have posted a ton of information in the hopes that something may jump out and make it easy for you to find my faults... i do see that rkhunter is messed up or something is off a bit .

no still can not receive emails to any account...i am lost... all domains that are pointed to the server have

10 mail.domain name of site.com

but still nothing hits the email boxes

now this is in the main user email box on server

Code:
Mail headers	View all headers | View raw message
From 	root@kwickservers.com (root)
To 	root@kwickservers.com
Date 	07/08/2010 06:33
Subject 	[rkhunter] kwickservers.com - Daily report
Message contents	

Warning: The file properties have changed:
         File: /usr/bin/awk
         Current inode: 8026210    Stored inode: 8020904
         Current file modification time: 1263717195
         Stored file modification time : 1263715765
Warning: The file properties have changed:
         File: /usr/bin/dpkg
         Current hash: 8e820f6ffa1ba84be7c5256a8bd344a49fec7182
         Stored hash : 7c5ab2420dfddf22f3794a1f2aa4b61243e44a08
         Current inode: 8026384    Stored inode: 8020980
         Current file modification time: 1268271700
         Stored file modification time : 1253435089
Warning: The file properties have changed:
         File: /usr/bin/dpkg-query
         Current hash: b5a6de09d70cd24592cb59dbdd2d58e9280a7cc0
         Stored hash : 19539cfbfd8621b4fae64a5f5f8ad80775acbf5d
         Current inode: 8026387    Stored inode: 8020983
         Current file modification time: 1268271700
         Stored file modification time : 1253435089
Warning: The file properties have changed:
         File: /usr/bin/ldd
         Current inode: 8025213    Stored inode: 8023206
         Current file modification time: 1274431413
         Stored file modification time : 1262519901
Warning: The file properties have changed:
         File: /usr/bin/sudo
         Current hash: c41ed3f1c3a0abba36f2cfc84b7926b3375a851d
         Stored hash : db452cb33718b23e8f33d0e27dc5168a25201116
         Current inode: 8020847    Stored inode: 8023129
         Current size: 143736    Stored size: 143656
         Current file modification time: 1277762825
         Stored file modification time : 1245687344
Warning: The file '/usr/bin/gawk' exists on the system, but it is not present in
the rkhunter.dat file.
Warning: The file properties have changed:
         File: /sbin/ifdown
         Current hash: a233b8eee20b09926816606d3c8cd85ee95d2ed0
         Stored hash : 4bee75d37d635cd8eb11b4725a3bee26b9547b81
         Current inode: 98306    Stored inode: 98358
         Current file modification time: 1266883140
         Stored file modification time : 1253662472
Warning: The file properties have changed:
         File: /sbin/ifup
         Current hash: a233b8eee20b09926816606d3c8cd85ee95d2ed0
         Stored hash : 4bee75d37d635cd8eb11b4725a3bee26b9547b81
         Current inode: 98306    Stored inode: 98358
         Current file modification time: 1266883140
         Stored file modification time : 1253662472
Warning: The file '/usr/sbin/inetd' exists on the system, but it is not present in
the rkhunter.dat file.
Warning: The file '/usr/sbin/unhide' exists on the system, but it is not present
in the rkhunter.dat file.
Warning: The file '/usr/sbin/unhide-linux26' exists on the system, but it is not
present in the rkhunter.dat file.
Warning: Found passwordless account: web2
Warning: The SSH and rkhunter configuration options should be the same:
         SSH configuration option 'PermitRootLogin': yes
         Rkhunter configuration option 'ALLOW_SSH_ROOT_USER': no
Warning: Hidden directory found: /dev/.udev
Warning: Hidden directory found: /dev/.initramfs
Warning: Application 'gpg', version '1.4.9', is out of date, and possibly a security
risk.
Warning: Application 'openssl', version '0.9.8g', is out of date, and possibly a
security risk.
Warning: Application 'php', version '5.2.10', is out of date, and possibly a security
risk.
Warning: Application 'sshd', version '5.1p1', is out of date, and possibly a security
risk.

One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)
now this is from var/mail/root
there is a ton more but this is the last entry

Code:
Subject: [rkhunter] kwickservers.com - Daily report
To: root@kwickservers.com
Message-Id: <20100516102655.042E7CC323@mail.kwickservers.com>
Date: Sun, 16 May 2010 06:26:55 -0400 (EDT)
From: root@kwickservers.com (root)

Warning: The file properties have changed:
         File: /usr/bin/awk
         Current inode: 8026210    Stored inode: 8020904
         Current file modification time: 1263717195
         Stored file modification time : 1263715765
Warning: The file properties have changed:
         File: /usr/bin/dpkg
         Current hash: 8e820f6ffa1ba84be7c5256a8bd344a49fec7182
         Stored hash : 7c5ab2420dfddf22f3794a1f2aa4b61243e44a08
         Current inode: 8026384    Stored inode: 8020980
         Current file modification time: 1268271700
         Stored file modification time : 1253435089
Warning: The file properties have changed:
         File: /usr/bin/dpkg-query
         Current hash: b5a6de09d70cd24592cb59dbdd2d58e9280a7cc0
         Stored hash : 19539cfbfd8621b4fae64a5f5f8ad80775acbf5d
         Current inode: 8026387    Stored inode: 8020983
         Current file modification time: 1268271700
         Stored file modification time : 1253435089
Warning: The file properties have changed:
         File: /usr/bin/sudo
         Current hash: f6d3835fd7ad04f7c749b0e1323887fe688af14e
         Stored hash : db452cb33718b23e8f33d0e27dc5168a25201116
         Current inode: 8022554    Stored inode: 8023129
         Current size: 143736    Stored size: 143656
         Current file modification time: 1271179860
         Stored file modification time : 1245687344
Warning: The file '/usr/bin/gawk' exists on the system, but it is not present in the rkhunter.dat file.
Warning: The file properties have changed:
         File: /sbin/ifdown
         Current hash: a233b8eee20b09926816606d3c8cd85ee95d2ed0
         Stored hash : 4bee75d37d635cd8eb11b4725a3bee26b9547b81
         Current inode: 98306    Stored inode: 98358
         Current file modification time: 1266883140
         Stored file modification time : 1253662472
Warning: The file properties have changed:
         File: /sbin/ifup
         Current hash: a233b8eee20b09926816606d3c8cd85ee95d2ed0
         Stored hash : 4bee75d37d635cd8eb11b4725a3bee26b9547b81
         Current inode: 98306    Stored inode: 98358
         Current file modification time: 1266883140
         Stored file modification time : 1253662472
Warning: The file '/usr/sbin/inetd' exists on the system, but it is not present in the rkhunter.dat file.
Warning: The file '/usr/sbin/unhide' exists on the system, but it is not present in the rkhunter.dat file.
Warning: The file '/usr/sbin/unhide-linux26' exists on the system, but it is not present in the rkhunter.dat file.
Warning: Found passwordless account: web2
Warning: The SSH and rkhunter configuration options should be the same:
         SSH configuration option 'PermitRootLogin': yes
         Rkhunter configuration option 'ALLOW_SSH_ROOT_USER': no
Warning: Hidden directory found: /dev/.udev
Warning: Hidden directory found: /dev/.initramfs
Warning: Application 'gpg', version '1.4.9', is out of date, and possibly a security risk.
Warning: Application 'openssl', version '0.9.8g', is out of date, and possibly a security risk.
Warning: Application 'php', version '5.2.10', is out of date, and possibly a security risk.
Warning: Application 'sshd', version '5.1p1', is out of date, and possibly a security risk.

One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)

now i just looked at the mail errors var/log/mail.err
and this is the latest out put

Code:
Aug  5 22:34:56 kwickservers postfix/smtp[9367]: fatal: valid hostname or network address required in server description: []
Aug  6 00:38:02 kwickservers postfix/sendmail[32530]: fatal: some email address@gmail.com(33): No recipient addresses found in message header

thanks for all your help

kwick
Reply With Quote